Application Security Engineer

Are you passionate about security and empowering others? As an Application Security Engineer, you’ll play a key role in embedding security into our CI/CD pipelines and engineering practices from the very beginning. With a focus on collaboration and coaching, you’ll help 160+ squads elevate their culture and practices around application security, ensuring we build secure solutions that our customers trust.

About the role
In this role, you’ll design and implement application security strategies, conduct assessments, and partner with development teams to integrate security seamlessly into the software development lifecycle. By providing guidance, training, and actionable insights, you’ll help foster a culture where security becomes second nature.

Your responsibilities will include:

• Conducting security assessments, including threat modeling, code reviews, and vulnerability assessments.
• Collaborating with development teams to integrate security into the software development lifecycle (SDLC).
• Identifying, analyzing, and remediating security vulnerabilities in applications.
• Providing training and guidance to development teams on secure coding practices.
• Staying informed about the latest security trends, vulnerabilities, and compliance standards.
• Participating in incident response and security investigations as needed.

We offer
In the same way that we place high demands on you, we expect you to place high demands on us. Here's what you can look forward to:

• An inclusive work environment where everyone is welcome.
• Career and development opportunities in the biggest insurance company in the Nordics.
• A possibility of a hybrid workplace.
• A health-promoting workplace with wellness allowances and sports activities.
• Great insurance benefits.
• Lunch benefit.
• High pension saving.

About the team

As part of the DevOps Center of Excellence, you’ll join a team of passionate professionals spreading hands-on knowledge across our 160+ squads. Together, we’re embedding security into every facet of development, ensuring robust, secure applications for our customers.

Who are you?
You are a dedicated security professional with a knack for collaboration and education. Your technical skills and proactive mindset make you an invaluable partner to development teams.

You also have:

• A bachelor’s degree in computer science, Information Security, or a related field.
• Proven experience in application security, penetration testing, or related roles.
• Strong understanding of web application architectures, technologies, and security best practices.
• Familiarity with security tools such as SAST, DAST, and IAST.
• Proficiency in programming languages like Java, Python, or JavaScript.
• Knowledge of compliance standards (e.g., DORA, OWASP, PCI-DSS, GDPR) is a plus.
• Excellent communication skills and a collaborative approach to teamwork.

Additional facts and the recruitment process

• Application deadline: Screening and interviewing will start immediately.
• To apply: Please attach your CV.
• Work location: Stockholm.
• Start: As per agreement.
• For more information, contact Johan Wildros, Head of Devops Center of Excellence, at johan.wildros@if.se or +46 73 420 99 00

We look forward to your application!

Background checks will be done in accordance with the law in the country of employment.